What Is Claimed Is: 



1 . A metnod for facilitating a key exchange that operates with a pre- 
shared secret key and i hat hides identities of parties involved in the key exchange, 



comprising: 

encrypting an i 
of a group secret key to 



entifier for the first party using a first key that is a function 
form an encrypted identifier; 
wherein the grdup secret key is known to members of a group, including 
the first party and the second party, but is kept secret from parties outside of the 
group; 

sending the enciypted identifier from the first party across the network to 
the second party; 

allowing the secbnd party to decrypt the encrypted identifier by using the 
group secret key; 

allowing the second party to use the identifier to lookup the pre-shared 
secret key that was previDusly established between the first party and the second 
party; and 

using the pre-shaced secret key in forming at least one subsequent 



communication between 



he first party and the second party. 



2. The method of claim 1 , further comprising initially establishing a 
negotiated secret key between a first party and a second party by performing 
communications between the first party and the second party across a network; 

wherein the communications between the first party and the second party 



do not allow an eavesdrop p> 



wherein the first key is additionally a function of the negotiated secret key; 



and 



er to determine the negotiated secret key; 
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wherein decrypting the encrypted identifier additionally involves using the 
negotiated secret keV 



3. The method of claim 2, wherein establishing the negotiated secret 
key involves using the Dii 
key. 



4. The method 
through which the first 



5. The 
to communicate 
Protocol (IP) addresses 



Diffie-Hellman method to establish the negotiated secret 



of claim 1 , wherein the second party is a firewall 
party seeks to communicate. 



method of claim 4, wherein the first party is a person seeking 
through the firewall from one of a number of possible Internet 



6. The me 
plurality of group secrdt 



hod of claim 1 , wherein the group secret key is one of a 
keys maintained by the group. 



7. A methc d for facilitating a key exchange that operates with a pre- 
shared secret key and tl at hides identities of parties involved in the key exchange, 
comprising: 

allowing the firs t party to encrypt an identifier for the first using a first key 
that is a function of a group secret key to form an encrypted identifier; 

wherein the group secret key is known to members of a group, including 
the first party and the se :ond party, but is kept secret from parties outside of the 
group; 

receiving the enc rypted identifier at the second party from the first party 



across the network; 
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1 1 decrypting the encrypted identifier by using the group secret key; 

12 using the identifier to lookup the pre-shared secret key that was previously 

1 3 established between the first party and the second party; and 

14 using the pre-shared secret key in forming at least one subsequent 

1 5 communication betweenlthe first party and the second party. 
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8. The method of claim 7, further comprising initially establishing a 
negotiated secret key between a first party and a second party by performing 
communications between the first party and the second party across a network; 

wherein the comm unications between the first party and the second party 
do not allow an eavesdropper to determine the negotiated secret key; 

wherein the first key is additionally a function of the negotiated secret key; 



and 

wherein decrypting 
negotiated secret key. 

9. The methoc 
key involves using the Difi 
key. 



1 10. The method 

2 through which the first 



par y 



the encrypted identifier additionally involves using the 



of claim 8, wherein establishing the negotiated secret 
ie-Hellman method to establish the negotiated secret 



of claim 7, wherein the second party is a firewall 
seeks to communicate. 



1 1 . The method 
to communicate through th|e 
Protocol (IP) addresses. 



of claim 10, wherein the first party is a person seeking 
firewall from one of a number of possible Internet 
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12. The met hod of claim 7, wherein the group secret key is one of a 
plurality of group secre keys maintained by the group. 



13. A compbter-readable storage medium storing instructions that 
when executed by a computer cause the computer to perform a method for 
facilitating a key exchange that operates with a pre-shared secret key and that 
hides identities of parties involved in the key exchange, the method comprising: 



encrypting an 
of a group secret key 



identifier for the first party using a first key that is a function 
1 3 form an encrypted identifier; 
wherein the gr )up secret key is known to members of a group, including 
the first party and the second party, but is kept secret from parties outside of the 
group; 

sending the en :rypted identifier from the first party across the network to 
the second party; 

allowing the s ;cond party to decrypt the encrypted identifier by using the 
group secret key; 

allowing the second party to use the identifier to lookup the pre-shared 
secret key that was previously established between the first party and the second 
party; and 

using the pre- shared secret key in forming at least one subsequent 
communication between the first party and the second party. 

14. The computer-readable storage medium of claim 13, wherein the 
method further comp *ises initially establishing a negotiated secret key between a 
first party and a secor .d party by performing communications between the first 
party and the second party across a network; 
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wherein the communications between the first party and the second party 
do not allow an eavesdropper to determine the negotiated secret key; 

wherein the first k ty is additionally a function of the negotiated secret key; 

and 

wherein decrypting the encrypted identifier additionally involves using the 
negotiated secret key. 



15. The computer 
establishing the negotia ed 
to establish the negotiated 



1 16. The 

2 second party is a firew* 



-readable storage medium of claim 14, wherein 
secret key involves using the Diffie-Hellman method 
secret key. 



corriputer-readable storage medium of claim 13, wherein the 
1 through which the first party seeks to communicate. 



1 7. The computer-readable storage medium of claim 16, wherein the 
first party is a person seeking to communicate through the firewall from one of a 
number of possible Internet Protocol (IP) addresses. 



18. The 
group secret key is 
group. 



computer- readable storage medium of claim 13, wherein the 
of a plurality of group secret keys maintained by the 



on ; 



19. A 
when executed by a 
facilitating a key 
hides identities of pan 



combuter-readable storage medium storing instructions that 

computer cause the computer to perform a method for 
exchange that operates with a pre-shared secret key and that 
ies involved in the key exchange, the method comprising: 
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allowing the first party to encrypt an identifier for the first party using a 
first key that is a functio \ of a group secret key to form an encrypted identifier; 

wherein the group secret key is known to members of a group, including 
the first party and the se ;ond party, but is kept secret from parties outside of the 
group; 

receiving the en ; 
across the network; 

decrypting the ejn 
using the identi 



rypted identifier at the second party from the first party 



crypted identifier by using the group secret key; 
ler to lookup the pre-shared secret key that was previously 
established between thfe first party and the second party; and 

using the pre-shared secret key in forming at least one subsequent 
communication between the first party and the second party. 

20. An app iratus that facilitates a key exchange that operates with a 
pre-shared secret key jnd that hides identities of parties involved in the key 
exchange, the apparatus comprising: 

an encryption mechanism that is configured to encrypt an identifier for the 
first party using a first key that is a function of a group secret key to form an 
encrypted identifier; 

wherein the gr >up secret key is known to members of a group, including 
the first party and the second party, but is kept secret from parties outside of the 
group; 

a communication mechanism that is configured to send the encrypted 
identifier from the first party across the network to the second party, so that the 
second party can decrypt the encrypted identifier by using the group secret key in 
order to use the identifier to lookup the pre-shared secret key that was previously 
established between trie first party and the second party; and 
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wherein the communication mechanism is additionally configured to use 



the pre-shared secret key 



between the first party an i the second party. 



o encrypt at least one subsequent communication 



2 1 . The apparatus of claim 20, further comprising a negotiation 
mechanism that is config ured to establish a negotiated secret key between a first 
party and a second party ?y performing communications between the first party 
and the second party acr< >ss a network; 

wherein the com nunications between the first party and the second party 
do not allow an eavesdn pper to determine the negotiated secret key; and 

key is additionally a function of the negotiated secret key; 



wherein the first 

and 

wherein decrypt 
negotiated secret key. 



ing the encrypted identifier additionally involves using the 



22. The app, iratus of claim 2 1 , wherein establishing the negotiated 
secret key involves usiijg the Diffie-Hellman method to establish the negotiated 
secret key. 



23. The apparatus of claim 20, wherein the second party is a firewall 



through which the firs 



24. The 
seeking to communicate 
Internet Protocol 



party seeks to communicate. 



apparatus of claim 23, wherein the first party is a person 
through the firewall from one of a number of possible 
(IP)| addresses. 
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1 25. The apparatus 

2 plurality of group secret 
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for the first party using 



group; 



of claim 20, wherein the group secret key is one of a 
keys maintained by the group. 



26. An appj Lratus that facilitates a key exchange that operates with a 
pre-shared secret key a ad that hides identities of parties involved in the key 
exchange, the apparatus comprising: 

a communication mechanism that is configured to receive an encrypted 
identifier at the second party from the first party across the network; 

wherein the enc rypted identifier was produced by encrypting an identifier 

a first key that is a function of a group secret key; 
wherein the group secret key is known to members of a group, including 
the first party and the sscond party, but is kept secret from parties outside of the 



a decryption mechanism that is configured to decrypt the encrypted 



identifier by using the broup secret key; 

a lookup mechanism that is configured to use the identifier to lookup the 
pre-shared secret key t lat was previously established between the first party and 
the second party; and 

wherein the communication mechanism is additionally configured to use 
the pre-shared secret k :y in forming at least one subsequent communication 
between the first party and the second party. 



V 
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